function execute() { if (LoginManager::isLogged() && LoginManager::isAdministrator()) { if (isset($_POST['exercise_name']) && $_SESSION['form_enabled']) { LoginManager::register(); LoginManager::register(); $group = sqlite_escape_string($_POST['exercise_group']); $code = sqlite_escape_string($_POST['exercise_code']); $name = sqlite_escape_string($_POST['exercise_name']); $description = sqlite_escape_string($_POST['propose_description']); $proposer = sqlite_escape_string($_POST['exercise_proposer']); $state = 'draft'; $word_count = sqlite_escape_string($_POST['exercise_word_count']); $licence = sqlite_escape_string($_POST['exercise_licence']); $language = sqlite_escape_string($_POST['exercise_language']); $media_type = sqlite_escape_string($_POST['exercise_media_type']); $exercise_version = sqlite_escape_string($_POST['exercise_exercise_version']); $author = sqlite_escape_string($_POST['exercise_author']); $author_website = sqlite_escape_string($_POST['exercise_author_website']); $author_contact = sqlite_escape_string($_POST['exercise_author_contact']); $packager = sqlite_escape_string($_POST['exercise_packager']); $packager_website = sqlite_escape_string($_POST['exercise_packager_website']); $packager_contact = sqlite_escape_string($_POST['exercise_packager_contact']); $translations = sqlite_escape_string($_POST['exercise_translations']); $file = sqlite_escape_string($_POST['exercise_file']); $state = 'waiting'; DatabaseManager::setQuery("INSERT INTO exercises VALUES(\n NULL,\n {$group},\n '{$proposer}',\n '{$state}',\n '{$code}',\n '{$name}',\n '{$description}',\n {$word_count},\n '{$licence}',\n '{$language}',\n '{$media_type}',\n '{$exercise_version}',\n '{$author}',\n '{$author_website}',\n '{$author_contact}',\n '{$packager}',\n '{$packager_website}',\n '{$packager_contact}',\n '{$translations}',\n '{$file}'\n );"); $this->message = "Exercise add."; $_SESSION['form_enabled'] = false; } else { $_SESSION['form_enabled'] = true; } } }
/** * doRegister will try to register the user ***/ function doRegister($username, $password) { $LoginManager = new LoginManager(); $registerresult = $LoginManager->register($username, $password); if (!$registerresult) { registerFailed(); } else { registerOk(); } }
function execute() { if (isset($_POST['propose_name']) && $_SESSION['form_enabled']) { LoginManager::register(); $name = sqlite_escape_string($_POST['propose_name']); $description = sqlite_escape_string($_POST['propose_description']); $links = sqlite_escape_string($_POST['propose_links']); $user = sqlite_escape_string(LoginManager::getLogin()); $state = 'waiting'; DatabaseManager::setQuery("INSERT INTO proposed_exercises VALUES(\n NULL,\n '{$name}',\n '{$description}',\n '{$links}',\n '{$user}',\n '{$state}',\n '',\n '',\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL,\n NULL\n );"); $this->message = "Exercise proposed."; $_SESSION['form_enabled'] = false; } else { $_SESSION['form_enabled'] = true; } }